(b) Discuss existing security features and describe possible enhancements

The second topic concerns security. Mike has read a lot about cyber-attacks and needs advice on the security of the web application. For this question you should exclude the fact that the TT284 web server requires an Open University login, and assume the web application is open to all visitors.

First, he wants an explanation of what aspects of the existing code are specific to keeping it secure.

Choose three aspects of the current code to write about, and in your report describe each of these aspects and explain how they add to security, and the risks to Mikes business of not including each of them.

Mike then wants you to advise on how to improve security of this application.

Think of two possible ways to further improve security of the application, and in your report describe each of these enhancements, and explain the risks to Mikes business of not implementing them. These enhancements could be further developments of the aspects stated above or completely new. In this section you may also consider any security measures which could be applied to the hosting platform.

Marks are awarded based on the relevance of the content provided, level of detail provided, and inclusion of relevant external references.

(20 marks for this section of your report).